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DETAILED ACTION 
Specification 

The title of the invention is not descriptive. A new title is required that is clearly 
indicative of the invention to which the claims are directed. 

The disclosure is objected to because the font size is too large for comfortable reading. 
While the MPEP does not specify a maximum font size, it suggests that nonscript type fonts (e.g. 
Arial, Times New Roman, or Courier) have a font size of 12. See MPEP 608.01. Appropriate 
correction is required. 

Claim Objections 

Claim 13 is objected to for the following informality: the phrase 'distributing original 
content object' is grammatically incorrect. Appropriate correction is required. 

Claim 27 is objected to for the following informality: in the phrase 'in responsive to the 
request', 'responsive' is incorrect. Appropriate correction is required. 

Claim 39 is objected to for the following informality: 'sevlet' is misspelled. Appropriate 
correction is required. 

Claim 42 is objected to for the following informality: a transition phrase is required 
between 'the method of claim 40,' and 'deleting or replacing'. Appropriate correction is 
required. 

Claims 3, 5, 1 1, 22, 28, 36, and 45 are objected to because of the following informalities: 
the term 'xLink' is undefined. XLink is a W3C specification, and is therefor subject to change. 
The term may be used in the applicant's claims, but it must be accompanied by generic language. 
Appropriate correction is required. 

Claims 7, 18, 30, 31, 36, 38, and 39 are objected to because of the following 
informalities: the term 'servlet' is undefined. A servlet is an application programming interface 
(API) object in Java, and is therefor subject to change. The term may be used in the applicant's 
claims, but it must be accompanied by generic language. Appropriate correction is required. 

Claims 8, 19, 28-31, and 36-39 are objected to because of the following informalities: the 
term 'P3P servlet' is undefined. P3P is a W3C protocol, and is therefor subject to change. The 
term may be used in the applicant's claims, but it must be accompanied by generic language. 
Appropriate correction is required. 



Claim Rejections - 55 USC § 102 
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The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or 
on sale in this country, more than one year prior to the date of application for patent in the United States. 

Claims 1, 2, 4, 6, 8-10, 12, 13, 15, 16, 19-21, 23, 24, 27, 32, 33, 35, 40, 41, 43, and 44 are 
rejected under 35 U.S.C. 102(b) as being anticipated by Bohrer et al. 

As per claims 1,2, 4, 6, 8-10, 12, 13, 15, 16, 19-21,23, 24, 27, 32, 33,35,40,41,43, and 
44, Bohrer et al. teach: 

1 . A method for managing privacy preferences or access to restricted information, 
comprising: 

tagging restricted or personal information (See e.g. [003 1], 'the Data Subject can use a 
web browser to set up one or more privacy policies by specifying authorization rules describing 
to whom, and under what conditions, the data can be released via conmiunication Unks'); and 

defining a content object with a link to the restricted or personal information (See e.g. 
[0017], *it allows a data subject to express privacy preference poHcies for controlling access to 
their personal data that is distributed across multiple enterprises and repositories' where 
^personal data' is the 'content object' and 'express privacy preference policies' is the Mink'). 

2. The method of claim 1, wherein defining the content object comprises defining the 
content object as a web document or a mark-up language file (See e.g. [0029], 'The invention 
involves information that is communicated between computers; this information could be in 
hypertext markup language (HTML), or extensible markup language (XML)'). 

4. The method of claim 1 , further comprising: 

storing the content object (See e.g. [0017], 'it allows a data subject to express complex 
policies on a large set of personal data in a way that is applicable regardless of the specific 
representation and data model used by enterprises that store that data'); and 

providing access to the content object (See e.g. [0017], 'it allows a data subject to specify 
complex privacy preferences that include who can access the data'). 

6. The method of claim 1 , fiirther comprising: 

receiving a request for information (See e.g. [0032], 'a Data Requester 105 can use a web 
browser 106 or some other computer programs 107 to send requests for data'); 

interrogating content sources (See e.g. [0035], 'The Profile Responder 116 receives 
requests for profile information. . . and uses the Policy authorization engine to check the 
authorization and privacy policies'); and 

collecting any content objects responsive to the request (See e.g. [0016], 'The data is 
released only if the privacy declaration of the requester matches the constraints imposed by the 
data subject via its privacy preferences'). 



Application/Control Number: 1 0/709,75 1 Page 4 

Art Unit: 2191 

8. The method of claim 6, fiirther comprising distributing any content object responsive 
to the request to a P3P servlet (See e.g. [0049], 'The Privacy Preference 302 specifies why and 
how the data can be accessed in terms of the P3P standards'). 

9. The method of claim 6, further comprising distributing any content object responsive 
to the request to a privacy function (See e.g. [0030], 'This embodiment supports the enforcement 
of privacy preferences in data exchanges according to authorization checks based on the privacy 
preferences specified by a data subject with the privacy policies of a data requester' where the 
'authorization checks' are considered 'privacy functions'). 

10. The method of claim 9, fiirther comprising parsing privacy preferences of an author 
of the content object or other restriction preferences (See e.g. [0033], *the system must provide 
several different functionalities, including the ability to. . . authorize release of data based on 
authorization rules and privacy policy matching and release data'). 

12. The method of claim of claim 9, further comprising comparing the privacy content 
object or other preferences of an author of the restriction preferences to a content provider's 
policies (See e.g. [0003], 'hi some cases the web site's privacy policy is compared to the 
consumer's poUcy preferences and wamings are issued when there is a mismatch'). 

13. The method of claim 12, further comprising distributing original content object to a 
requester in response to the privacy preferences of the author of the content object or other 
restriction preferences being consistent with the content provider's policies (See e.g. [0017], 'an 
independent third party acting as a data-subject's personal data service and providing various 
services including. . . matching privacy policies, gathering data fi^om third parties and releasing 
and/or authorizing release of data to data requesters'). 

15. A method for managing privacy or access to restricted information, comprising: 

collecting a content object responsive to a request (See e.g. [0032], 'a Data Requester 105 
can use a web browser 106 or some other computer programs 107 to send requests for data 109 
as well as receive replies 1 10 to that request along with any returned data'); 

accessing privacy preferences of an author of the content object or other restriction 
preferences (See e.g. [0033], 'the system must provide several different functionalities, including 
the ability to. . . define authorization rules and privacy controls'); and 

comparing the privacy preferences or other restriction preferences to a content provider's 
policies (See e.g. [0033], 'the system must provide several different functionalities, including the 
ability to. . . authenticate requesters, authorize release of data based on authorization rules and 
privacy policy matching' where [0013], 'a data subject may want to setup privacy preference 
policies which can allow fully automatic release of data, even without knowing about the 
requester or the request itself. . . Similarly, a data subject may allow access to certain, non- 
identifiable financial data such as employment status and salary range, thus enabling interested 
financial institutions to automatically access such data and send solicitations for credit cards/loan 
requests to the data subjects' indicates that a 'requester' can also be a 'content provider'). 
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16. The method of claim 15, further comprising distributing the content object as 
originally constituted in response to the privacy preferences of the author of the content object or 
other restriction preferences being consistent with the content provider's policies (See e.g. 
[0033], 'To facilitate the requests. . . for data from Data Requesters, the system must provide 
several different functionalities, including the ability to.. . authorize release of data based on 
authorization rules and privacy policy matching and release data'). 

19. The method of claim 15 further comprising distributing any collected content object 
to a P3P servlet (See e.g. [0049], 'The Privacy Preference 302 specifies why and how the data 
can be accessed in terms of the P3P standards'). 

20. The method of claim 15, further comprising distributing any content object in 
response to the request to a privacy fiinction (See e.g. [0030], 'This embodiment supports the 
enforcement of privacy preferences in data exchanges according to authorization checks based 
on the privacy preferences specified by a data subject with the privacy policies of a data 
requester' where the 'authorization checks' are considered 'privacy functions'). 

21 . The method of claim 20, further comprising parsing the privacy preferences of an 
author of the content object or other restriction preferences (See e.g. [0033], 'the system must 
provide several different functionalities, including the ability to. . . authorize release of data based 
on authorization rules and privacy policy matching and release data'). 

23. A system for managing privacy preferences or access to restricted information, 
comprising: 

a server to collect a content object in response to a request (See e.g. [0032], 'a Data 
Requester 105 can use a web browser 106 or some other computer programs 107 to send requests 
for data 109 as well as receive replies 110 to that request along with any returned data'); 

a privacy function operable on the server to access privacy preferences of an author of the 
content object or other restriction preferences (See e.g. [0033], 'the system must provide several 
different functionalities, including the ability to, . . define authorization rules and privacy 
controls'); and 

means for comparing the privacy preferences or other restriction preferences to a content 
provider's pohcies (See e.g. [0033], 'the system must provide several different functionalities, 
including the ability to. . . authenticate requesters, authorize release of data based on 
authorization rules and privacy policy matching' where [0013], 'a data subject may want to setup 
privacy preference policies which can allow fully automatic release of data, even without 
knowing about the requester or the request itself, s^. Similarly, a data subject may allow access to 
certain, non-identifiable financial data such as employment status and salary range, thus enabling 
interested financial institutions to automatically access such data and send solicitations for credit 
cards/loan requests to the data subjects' indicates that a 'requester' can also be a 'content 
provider'). 



» 
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24. The system of claim 23, wherein the privacy function distributes the content object as 
originally constituted in response to the privacy preferences or other restriction preferences being 
consistent with the content provider's policies (See e.g. [0033], 'To facilitate the requests. . . for 
data from Data Requesters, the system must provide several different functionalities, including 
the ability to. . . authorize release of data based on authorization rules and privacy policy 
matching and release data'). 

27. The system of claim 23, further comprising a collection function operable on the 
server to interrogate content sources and collect content objects from the content sources in 
responsive to the request (See e.g. [0032], 'a Data Requester 105 can use a web browser 106 or 
some other computer programs 107 to send requests for data 109 as well as receive replies 1 10 to 
that request along with any retumed data' and Fig. 1). 

32. A method of making a system for managing privacy preferences or access to 
restricted information, comprising: 

providing a server to collect a content object in response to a request (See e.g. [0032], *a 
Data Requester 1 05 can use a web browser 1 06 or some other computer programs 1 07 to send 
requests for data 109 as well as receive replies 1 10 to that request along with any retumed data'); 

providing a privacy function operable on the server to access privacy preferences of an 
author of the content object or other restriction preferences (See e.g. [0033], -the system must 
provide several different functionalities, including the ability to. . . define authorization rules and 
privacy controls'); and 

providing means for comparing the privacy preferences or other restriction preferences to 
a content provider's policies (See e.g. [0033], *the system must provide several different 
functionalities, including the ability to. . . authenticate requesters, authorize release of data based 
on authorization rules and privacy policy matching' where [0013], 'a data subject may want to 
setup privacy preference policies which can allow fully automatic release of data, even without 
knowing about the requester or the request itself. . . Similarly, a data subject may allow access to 
certain, non-identifiable financial data such as employment status and salary range, thus enabling 
interested financial institutions to automatically access such data and send solicitations for credit 
cards/loan requests to the data subjects' indicates that a 'requester' can also be a 'content 
provider'). 

33. The method of claim 32, further comprising adapting the privacy function to 
distribute the content object as originally constituted in response to the privacy preferences or 
other restriction preferences being consistent with the content provider's policies (See e.g. 
[0033], *To facilitate the requests. . . for data from Data Requesters, the system must provide 
several different functionalities, including the ability to... authorize release of data based on 
authorization rules and privacy policy matching and release data'). 

35. The method of claim 32, further comprising providing a collection function to 
interrogate content sources and to collect content objects responsive to the request (See e.g. 
[0032], 'a Data Requester 105 can use a web browser 106 or some other computer programs 107 
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to send requests for data 109 as well as receive replies 1 10 to that request along with any 
returned data' and Fig. 1). 

40. A computer-readable medium having computer executable instructions for 
performing a method, comprising: 

collecting a content object responsive to a request (See e.g. [0032], 'a Data Requester 105 
can use a web browser 1 06 or some other computer programs 1 07 to send requests for data 1 09 
as well as receive replies 1 10 to that request along with any retumed data*); 

accessing privacy preferences of an author of the content object or other restriction 
preferences (See e.g. [0033], 'the system must provide several different functionalities, including 
the ability to. . . define authorization rules and privacy controls'); and 

comparing the privacy preferences or other restriction preferences to a content provider's 
policies (See e.g. [0033], 'the system must provide several different functionalities, including the 
ability to... authenticate requesters, authorize release of data based on authorization rules and 
privacy policy matching' where [0013], 'a data subject may want to setup privacy preference 
policies which can allow fully automatic release of data, even without knowing about the 
requester or the request itself. . . Similarly, a data subject may allow access to certain, non- 
identifiable financial data such as employment status and salary range, thus enabling interested 
financial institutions to automatically access such data and send solicitations for credit cards/loan 
requests to the data subjects' indicates that a 'requester' can also be a 'content provider'). 

41. The computer-readable medium having computer executable instructions for 
performing the method of claim 40, further comprising distributing the content object as 
originally constituted in response to the privacy preferences of the author of the content object or 
other restriction preferences being consistent with the content provider's policies (See e.g. 
[0033], 'To facilitate the requests. . . for data from Data Requesters, the system must provide 
several different functionalities, including the ability to. authorize release of data based on 
authorization rules and privacy policy matching and release data'). 

43. The computer-readable medium having computer executable instructions for 
performing the method of claim 40, further comprising distributing any content object responsive 
to the request to a privacy function (See e.g. [0030], 'This embodiment supports the enforcement 
of privacy preferences in data exchanges according to authorization checks based on the privacy 
preferences specified by a data subject with the privacy policies of a data requester' where the 
'authorization checks' are considered 'privacy functions'). 

44. The computer-readable medium having computer executable instructions for 
perforaiing the method of claim 43, further comprising parsing the privacy preferences of an 
author of the content object or other restriction preferences (See e.g. [0033], 'the system must 
provide several different functionalities, including the ability to... authorize release of data based 
on authorization rules and privacy policy matching and release data'). 



Application/Control Number: 10/709,751 
Art Unit: 2191 



Page 8 



Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 3, 5, 7, 1 1, 18, 22, 28-30, 36-38, and 45 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Bohrer et al. as applied to claims 1, 2, 4, 6, 8-10, 12, 13, 15, 16, 19-21, 
23, 24, 27, 32, 33, 35, 40, 41, 43, and 44 above, and further in view of Wikipedia.org' s 
definitions of 'XLink', 7ava Servlet', and T3P'. 

3. The method of claim 1, further comprising associating an xLink attribute to the 
restricted or personal information. 

5. The method of claim 1, further comprising: 

storing the restricted or personal information (See e.g. Bohrer et al. [0033], 'To facilitate 
the requests from a Data Subject to setup data profiles and privacy policies. . . The profiles are 
stored in a Profile Database 123 while the policies are stored in a Policy Database 124'); and 

providing access to the restricted or personal information via one of an xLink or a secure 
connection. 

7. The method of claim 6, wherein collecting any content objects responsive to the 
request comprises using a collection servlet. 

1 1 . The method of claim 10, further comprising locating or accessing privacy preferences 
of an author of the content object or other restriction preferences using an xLink. 

18. The method of claim 15, further comprising using a collection servlet to collect the 
content object responsive to the request. 

22. The method of claim 21, further comprising locating or accessing the privacy 
preferences or restriction preferences using an xLink. 

28. The system of claim 23, wherein the privacy function comprises a P3P servlet to 
access the privacy preferences or other restriction preferences via an xLink. 

29. The system of claim 28, wherein the P3P servlet comprises means for comparing the 
privacy preferences or other restriction preferences to a web site or content provider's policies 
(See e.g. Bohrer et al. [0003], 'In some cases the web site's privacy policy is compared to the 
consumer's policy preferences and wamings are issued when there is a mismatch'). 
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30. The system of claim 29, wherein the P3P servlet comprises means for transmitting the 
content object as originally constituted to a collection servlet in response to the privacy 
preferences or restriction preferences being consistent with the web site or content provider's 
policies (See e.g. Bohrer et al. [0033], 'To facilitate the requests. . . for data from Data 
Requesters, the system must provide several different functionalities, including the ability to... 
authorize release of data based on authorization rules and privacy policy matching and release 
data'). 

36. The method of claim 32, further comprising providing a P3P servlet to access the 
privacy preferences or other restricted preferences via an xLink. 

37. The method of claim 36, further comprising adapting the P3P servlet to compare the 
privacy preferences or other restriction preferences to a web site or content provider's policies 
(See e.g. Bohrer et al. [0003], 'In some cases the web site's privacy policy is compared to the 
consumer's policy preferences and warnings are issued when there is a mismatch'). 

38. The method of claim 37, further comprising adapting the P3P servlet to transmit the 
content object as originally constituted to a collection servlet in response to the privacy 
preferences or restriction preferences being consistent with the web site or content provider's 
policies (See e.g. Bohrer et al. [0033], 'To facilitate the requests. . . for data from Data 
Requesters, the system must provide several different functionalities, including the ability to. . . 
authorize release of data based on authorization rules and privacy policy matching and release 
data'). 

45. The computer-readable medium having computer executable instructions for 
performing the method of claim 44, further comprising locating or accessing the privacy 
preferences or restriction preferences using an xLink. 

As per claims 3, 5, 7, 1 1, 18, 22, 28-30, 36-38, and 45, Wikipedia teaches: 

Bohrer et al. do not disclose using xLinks, servlets, and P3P to access information, but 
Wikipedia discloses the motivation for doing so. Bohrer and Wikipedia are analogous art 
because they both discuss transferring data across a network. At the time of the invention, it 
would have been obvious to one of ordinary skill in the art to use xLinks, servlets, and P3P to 
access information over the Internet or other network. 

As per xLinks, Wikipedia discloses that an xLink 'is an XML markup language used for 
creating hyperlinks for XML docimients. XLink is a W3C specification which describes methods 
for allowing elements to be inserted into XML documents in order to create and describe Hnks 
between resources, whether internal or extemal to the original document'. 

As per servlets, Wikipedia discloses that using a servlet 'allows a software developer to 
add dynamic content to a Web server using the Java platform. The generated content is 
commonly HTML, but may be other data such as XML. Servlets are the Java counterpart to 
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dynamic web content technologies such as CGI, PHP or ASP. Servlets can maintain state across 
many server transactions by using HTTP cookies, session variables or URL rewriting'. 

As per P3P, Wikipedia discloses that T3P is designed to give users a more precise 
control of the kind of information that they allow to release'. 

Claims 14, 17, 25, 26, 34, and 42 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Bohrer et al. as applied to claims 1, 2, 4, 6, 8-10, 12, 13, 15, 16, 19-21, 23, 24, 
27, 32, 33, 35, 40, 41, 43, and 44 above, and further in view of Fahlman et al., U.S. Pat. 
5,960,080. 

As per claims 14, 17, 25, 26, 34, and 42, Fahlman et al. teach: 
14. The method of claim 12, further comprising: 

deleting or replacing private or restricted information with default or generic information 
in response to the content privacy preferences of the author of the content object or other 
restriction preferences being inconsistent with the content provider's policies (See e.g. Brief 
Summary par. 14, 'transforming an original message into a final message by including an 
untrusted service includes. . . replacing the at least one sensitive term with a standard token to 
create a sanitized message' where *an untrusted service' indicates a disparity in 'privacy' and 
'restriction' preferences between the 'author' and 'provider'); 

repackaging the content object restriction preferences being inconsistent in response to 
deleting or replacing the private or restricted information (See e.g. Brief Summary par. 14, 
'transforming an original message into a final message by. . . replacing the at least one sensitive 
term with a standard token to create a sanitized message'); and 

distributing the repacked content object to a requester (See e.g. Brief Summary par. 14, 
'transforming an original message into a final message by. . . transmitting the sanitized message 
to a provider of the untrusted service'). 

17. The method of claim 15, further comprising: 

deleting or replacing private or restricted information with default or generic information 
in response to the privacy preferences of the author of the content object or other restriction 
preferences being inconsistent with the content provider's policies (See e.g. Brief Summary par. 
14, 'transforming an original message into a final message by including an untrusted service 
includes. . . replacing the at least one sensitive term with a standard token to create a sanitized 
message' where 'an untrusted service' indicates a disparity in 'privacy' and 'restriction' 
preferences between the 'author' and 'provider'); 

repackaging the content object in response to deleting or replacing the private or 
restricted information (See e.g. Brief Summary par. 14, 'transforming an original message into a 
final message by. . . replacing the at least one sensitive term with a standard token to create a 
sanitized message'); and 

distributing the repacked content object to a requester (See e.g. Brief Summary par. 14, 
'transforming an original message into a final message by. . . transmitting the sanitized message 
to a provider of the untrusted service'). 
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25, The syslem of claim 23, wherein the privacy function deletes or replaces private or 
restricted information with default or generic information in response to the privacy preferences 
or restriction preferences being inconsistent with the content provider's policies (See e.g. Brief 
Summary par. 14, 'transforming an original message into a final message by including an 
untrusted service includes. . . replacing the at least one sensitive term with a standard token to 
create a sanitized message' where 'an untrusted service' indicates a disparity in 'privacy' and 
'restriction' preferences between the 'author' and 'provider'). 

26. The system of claim 25, wherein the privacy function repackages the content object in 
response to deleting or replacing the private or restricted information (See e.g. Brief Summary 
par. 14, 'transforming an original message into a final message by. .. replacing the at least one 
sensitive temi with a standard token to create a sanitized message'). 

34. The method of claim 32, fiirther comprising adapting the privacy fimction to delete or 
replace private or restricted information with default or generic information in response to the 
privacy preferences or restriction preferences being inconsistent with the content provider's 
policies (See e.g. Brief Summauy par. 14, 'transforming an original message into a final message 
by including an untrusted service includes. . . replacing the at least one sensitive term with a 
standard token to create a sanitized message' where 'an untrusted service' indicates a disparity in 
'privacy' and 'restriction' preferences between the 'author' and 'provider'). 

42. The computer-readable medium having computer executable instructions for 
performing the method of claim 40, 

deleting or replacing private or restricted information with default or generic infomiation 
in response to the privacy preferences of the author of the content object or other restriction 
preferences being inconsistent with the content provider's policies (See e.g. Brief Sxmmiary par. 
14, 'transforming an original message into a final message by including an untrusted service 
includes. . . replacing the at least one sensitive term with a standard token to create a sanitized 
message' where 'an untrusted service' indicates a disparity in 'privacy' and 'restriction' 
preferences between the 'author' and 'provider'); 

repackaging the content object in response to deleting or replacing the private or 
restricted information (See e.g. Brief Summary par. 14, 'transforming an original message into a 
final message by. . . replacing the at least one sensitive term with a standard token to create a 
sanitized message'); and 

distributing the repacked content object to a requester (See e.g. Brief Summary par. 14, 
'transforming an original message into a final message by. . . transmitting the sanitized message 
to a provider of the untrusted service'). 

Bohrer et al. do not disclose replacing private information with generic language, but 
Fahlman et al. do make such a disclosure. Bohrer et al. and Fahlman et al. are analogous art 
because they both discuss transmitting messages with sensitive information in them. At the time 
of the invention, it would have been obvious to one of ordinary skill in the art to replace sensitive 
information in a transmission with generic information. The motivation is found in Fahlman et 
al. Brief Summary par. 9, 'even an automated service, such as an automatic grammar checker or 
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style checker, may create potential security leak under certain circumstances if the automated 
service has access to the full content of a message'. 

Claims 31 and 39 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Wikipedia as applied to claims 3, 5, 7, 1 1, 18, 22, 28-30, 36-38, and 45 above, and further in 
view of Fahlman et al., U.S. Pat. 5,960,080. 

As per claims 31 and 39, Fahlman et al. teach: 

3 1 . The system of claim 30, wherein the P3P servlet comprises: 

means for deleting or replacing private or restricted information with default or generic 
information in response to the privacy preferences or restriction preferences being inconsistent 
with the web site or content provider's policies (See e.g. Brief Summary par. 14, 'transforming 
an original message into a final message by including an untrusted service includes.. . replacing 
the at least one sensitive term with a standard token to create a sanitized message' where *an 
untrusted service' indicates a disparity in 'privacy' and 'restriction' preferences between the 
'author' and 'provider'); 

means for repackaging the content object in response to deleting or replacing the private 
or restricted information (See e.g. Brief Summary par. 14, 'transforming an original message into 
a final message by. . . replacing the at least one sensitive term with a standard token to create a 
sanitized message'); and 

means for transmitting the repackaged content object to the collection servlet in response 
to the private or restricted information (See e.g. Brief Summary par. 14, 'transforming an 
original message into a final message by. . . transmitting the sanitized message to a provider of 
the untrusted service'). 

39. The method of claim 38, further comprising adapting the P3P sevlet to: 
delete or replace private or restricted information with default or generic information in 
response to the privacy preferences or restriction preferences being inconsistent with the web site 
or content provider's policies (See e.g. Brief Summary par. 14, 'transforming an original 
message into a fmal message by including an untrusted service includes... replacing the at least 
one sensitive term with a standard token to create a sanitized message' where 'an untrusted 
service' indicates a disparity in 'privacy' and 'restriction' preferences between the 'author' and 
'provider'); 

repackage the content object in response to deleting or replacing the private or restricted 
information (See e.g. Brief Summary par. 14, 'transforming an original message into a final 
message by. . . replacing the at least one sensitive term with a standard token to create a sanitized 
message'); and 

transmit the repackaged content object to the collection sevlet in response to deleting or 
replacing the private or restricted information (See e.g. Brief Simimary par. 14, 'transforming an 
original message into a final message by . . . transmitting the sanitized message to a provider of 
the untrusted service'). 
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Wikipedia does not disclose replacing private information with generic language, but 
Fahlman et al. do make such a disclosure. Wikipedia and Fahlman et al. are analogous art 
because they both discuss transmitting messages with sensitive information in them. At the time 
of the invention, it would have been obvious to one of ordinary skill in the art to replace sensitive 
information in a transmission with generic information. The motivation is found in Fahlman et 
al. Brief Summary par. 9, 'even an automated service, such as an automatic grammar checker or 
style checker, may create potential security leak under certain circumstances if the automated 
service has access to the full content of a message'. 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Aaron J. Sanders whose telephone number is 571-270-1016. The 
examiner can normally be reached on M-Th 7:30a-5:00p. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, David Bruce can be reached on 571-272-2487. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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